Unable to find a virtual host listening on port 80


#1

Unable to find a virtual host listening on port 80 on existing domains that are working.

My domain is: designcomputer.com

I ran this command:

/root/certbot-auto --cert-name designcomputer -d designcomputer.com -d www.designcomputer.com -d 450th.designcomputer.com -d blenderism.com -d blenderism.org -d designtv.net -d www.designtv.net -d ereflex.com -d fortmose.com -d frogfancy.com -d ic5.designcomputer.com -d ic5.designtv.net -d legiblelab.com -d schedule.designtv.net -d taoofblender.com -d taoofblender.org -d test.designcomputer.com -d test.designtv.net -d weaponscollector.com -d www.weaponscollector.com -d plus.weaponscollector.com -d zenofblender.com -d zenofblender.org

It produced this output:

Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache


You are updating certificate designcomputer to include new domain(s):

You are also removing previously included domain(s):
(None)

Did you intend to make this change?

(U)pdate cert/©ancel: (U)pdate cert/©ancel: U
Renewing an existing certificate
Performing the following challenges:
tls-sni-01 challenge for designcomputer.com
tls-sni-01 challenge for www.designcomputer.com
tls-sni-01 challenge for 450th.designcomputer.com
tls-sni-01 challenge for blenderism.com
http-01 challenge for blenderism.org
tls-sni-01 challenge for designtv.net
tls-sni-01 challenge for www.designtv.net
tls-sni-01 challenge for ereflex.com
tls-sni-01 challenge for fortmose.com
tls-sni-01 challenge for frogfancy.com
tls-sni-01 challenge for ic5.designcomputer.com
tls-sni-01 challenge for ic5.designtv.net
tls-sni-01 challenge for legiblelab.com
tls-sni-01 challenge for schedule.designtv.net
tls-sni-01 challenge for taoofblender.com
http-01 challenge for taoofblender.org
tls-sni-01 challenge for test.designcomputer.com
tls-sni-01 challenge for test.designtv.net
tls-sni-01 challenge for weaponscollector.com
tls-sni-01 challenge for www.weaponscollector.com
tls-sni-01 challenge for plus.weaponscollector.com
tls-sni-01 challenge for zenofblender.com
http-01 challenge for zenofblender.org
Cleaning up challenges
Unable to find a virtual host listening on port 80 which is currently needed for Certbot to prove to the CA that you control your domain. Please add a virtual host for port 80.

My web server is (include version):
Apache/2.2.15

The operating system my web server runs on is (include version):
CentOS release 6.8 (Final)

My hosting provider, if applicable, is:
N/A

I can login to a root shell on my machine (yes or no, or I don’t know):
Yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
No


#2

New certs must now be authenticated via HTTP (or DNS).
TLS is only supported for renewals (for the time being - but that may also go away).


#3

The new additions are operational and fully accessible via HTTP. It looks like a failed attempt was made to authenticate via HTTP. Should I use a different command?


#4

Can you identify and post the Apache configuration files that define the HTTP virtual hosts for those new names?


#5
<VirtualHost *:80 *:443>
ServerName zenofblender.org
ServerAlias *.zenofblender.org
DocumentRoot /var/www/zenofblender.com
</VirtualHost>

<VirtualHost *:80 *:443>
ServerName taoofblender.org
ServerAlias *.taoofblender.org
DocumentRoot /var/www/zenofblender.com
</VirtualHost>

<VirtualHost *:80 *:443>
ServerName blenderism.org
ServerAlias *.blenderism.org
DocumentRoot /var/www/zenofblender.com
</VirtualHost>

#6

Thanks, could you try this?

apachectl -t -D DUMP_VHOSTS


#7

Try removing the *:443 for the three new sites:
<VirtualHost *:80>

And rerun your certbot command


#8

Removing the *:443 for the three new sites and rerunning the command fixed the problem. Also the *:443 doesn’t seem to be required because SSL is now working on the new sites.

Thanks so much for the help!


#9

Got it working, but thanks for the help.


#10

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.